master/php/ApiQueryTokens_8php_source.html

<?php

namespace MediaWiki\Api;


use MediaWiki\MediaWikiServices;

use MediaWiki\User\User;

use Wikimedia\ParamValidator\ParamValidator;


class ApiQueryTokens extends ApiQueryBase {


    public function execute() {

        $params = $this->extractRequestParams();


        if ( $this->lacksSameOriginSecurity() ) {

            $this->addWarning( [ 'apiwarn-tokens-origin' ] );

            return;

        }


        $user = $this->getUser();

        $session = $this->getRequest()->getSession();

        $salts = self::getTokenTypeSalts();


        $done = [];

        $path = [ 'query', $this->getModuleName() ];

        $this->getResult()->addArrayType( $path, 'assoc' );


        foreach ( $params['type'] as $type ) {

            $token = self::getToken( $user, $session, $salts[$type] )->toString();

            $fit = $this->getResult()->addValue( $path, $type . 'token', $token );


            if ( !$fit ) {

                // Abuse type as a query-continue parameter and set it to all unprocessed types

                $this->setContinueEnumParameter( 'type',

                    array_diff( $params['type'], $done ) );

                break;

            }

            $done[] = $type;

        }

    }


    public static function getTokenTypeSalts() {

        static $salts = null;

        if ( !$salts ) {

            $salts = [

                'csrf' => '',

                'watch' => 'watch',

                'patrol' => 'patrol',

                'rollback' => 'rollback',

                'userrights' => 'userrights',

                'login' => [ '', 'login' ],

                'createaccount' => [ '', 'createaccount' ],

            ];

            $hookContainer = MediaWikiServices::getInstance()->getHookContainer();

            $hookRunner = new ApiHookRunner( $hookContainer );

            $hookRunner->onApiQueryTokensRegisterTypes( $salts );

            ksort( $salts );

        }


        return $salts;

    }


    public static function getToken( User $user, \MediaWiki\Session\Session $session, $salt ) {

        if ( is_array( $salt ) ) {

            $session->persist();

            return $session->getToken( ...$salt );

        } else {

            return $user->getEditTokenObject( $salt, $session->getRequest() );

        }

    }


    public function getAllowedParams() {

        return [

            'type' => [

                ParamValidator::PARAM_DEFAULT => 'csrf',

                ParamValidator::PARAM_ISMULTI => true,

                ParamValidator::PARAM_TYPE => array_keys( self::getTokenTypeSalts() ),

                ParamValidator::PARAM_ALL => true,

            ],

        ];

    }


    protected function getExamplesMessages() {

        return [

            'action=query&meta=tokens'

                => 'apihelp-query+tokens-example-simple',

            'action=query&meta=tokens&type=watch|patrol'

                => 'apihelp-query+tokens-example-types',

        ];

    }


    public function isReadMode() {

        // So login tokens can be fetched on private wikis

        return false;

    }


    public function getHelpUrls() {

        return 'https://www.mediawiki.org/wiki/Special:MyLanguage/API:Tokens';

    }


}


class_alias( ApiQueryTokens::class, 'ApiQueryTokens' );

$path
$path
Definition NoLocalSettings.php:28

$params
array $params
The job parameters.
Definition UploadJobTrait.php:46

MediaWiki\Api\ApiBase\getModuleName
getModuleName()
Get the name of the module being executed by this instance.
Definition ApiBase.php:571

MediaWiki\Api\ApiBase\getResult
getResult()
Get the result object.
Definition ApiBase.php:710

MediaWiki\Api\ApiBase\addWarning
addWarning( $msg, $code=null, $data=null)
Add a warning for this module.
Definition ApiBase.php:1483

MediaWiki\Api\ApiBase\lacksSameOriginSecurity
lacksSameOriginSecurity()
Returns true if the current request breaks the same-origin policy.
Definition ApiBase.php:637

MediaWiki\Api\ApiBase\extractRequestParams
extractRequestParams( $options=[])
Using getAllowedParams(), this function makes an array of the values provided by the user,...
Definition ApiBase.php:851

MediaWiki\Api\ApiHookRunner
This class provides an implementation of the hook interfaces used by the core Action API,...
Definition ApiHookRunner.php:63

MediaWiki\Api\ApiQueryBase
This is a base class for all Query modules.
Definition ApiQueryBase.php:45

MediaWiki\Api\ApiQueryBase\setContinueEnumParameter
setContinueEnumParameter( $paramName, $paramValue)
Set a query-continue value.
Definition ApiQueryBase.php:506

MediaWiki\Api\ApiQueryTokens
Module to fetch tokens via action=query&meta=tokens.
Definition ApiQueryTokens.php:38

MediaWiki\Api\ApiQueryTokens\getAllowedParams
getAllowedParams()
Returns an array of allowed parameters (parameter name) => (default value) or (parameter name) => (ar...
Definition ApiQueryTokens.php:120

MediaWiki\Api\ApiQueryTokens\execute
execute()
Evaluates the parameters, performs the requested query, and sets up the result.
Definition ApiQueryTokens.php:40

MediaWiki\Api\ApiQueryTokens\isReadMode
isReadMode()
Indicates whether this module requires read rights.
Definition ApiQueryTokens.php:140

MediaWiki\Api\ApiQueryTokens\getHelpUrls
getHelpUrls()
Return links to more detailed help pages about the module.
Definition ApiQueryTokens.php:145

MediaWiki\Api\ApiQueryTokens\getExamplesMessages
getExamplesMessages()
Returns usage examples for this module.
Definition ApiQueryTokens.php:131

MediaWiki\Api\ApiQueryTokens\getToken
static getToken(User $user, \MediaWiki\Session\Session $session, $salt)
Get a token from a salt.
Definition ApiQueryTokens.php:111

MediaWiki\Api\ApiQueryTokens\getTokenTypeSalts
static getTokenTypeSalts()
Get the salts for known token types.
Definition ApiQueryTokens.php:78

MediaWiki\MediaWikiServices
Service locator for MediaWiki core services.
Definition MediaWikiServices.php:242

MediaWiki\MediaWikiServices\getInstance
static getInstance()
Returns the global default instance of the top level service locator.
Definition MediaWikiServices.php:325

MediaWiki\Session\Session
Manages data for an authenticated session.
Definition Session.php:54

MediaWiki\User\User
internal since 1.36
Definition User.php:93

MediaWiki\User\User\getEditTokenObject
getEditTokenObject( $salt='', $request=null)
Initialize (if necessary) and return a session token value which can be used in edit forms to show th...
Definition User.php:2755

Wikimedia\ParamValidator\ParamValidator
Service for formatting and validating API parameters.
Definition ParamValidator.php:42

MediaWiki\Api
Definition ApiAcquireTempUserName.php:22

MediaWiki\Api\getUser
getUser()

MediaWiki\Api\getRequest
getRequest()

MediaWiki
A helper class for throttling authentication attempts.